Merge pull request #134 from codex-team/allow-cors

n0str · web-flow · commit a0155ab05c8e · 2025-08-22T13:02:02.000+03:00
Add CORS
diff --git a/pkg/server/errorshandler/handler_sentry.go b/pkg/server/errorshandler/handler_sentry.go
@@ -13,6 +13,15 @@ import (
 const SentryQueueName = "external/sentry"
 const CatcherType = "external/sentry"
 
+// helper for CORS
+func allowCORS(ctx *fasthttp.RequestCtx) {
+	h := &ctx.Response.Header
+	h.Set("Access-Control-Allow-Origin", "*")
+	h.Set("Access-Control-Allow-Methods", "POST, OPTIONS")
+	h.Set("Access-Control-Allow-Headers", "Content-Type, X-Sentry-Auth")
+	h.Set("Access-Control-Max-Age", "86400")
+}
+
 // HandleHTTP processes HTTP requests with JSON body
 func (handler *Handler) HandleSentry(ctx *fasthttp.RequestCtx) {
 	if ctx.Request.Header.ContentLength() > handler.MaxErrorCatcherMessageSize {
@@ -21,6 +30,12 @@ func (handler *Handler) HandleSentry(ctx *fasthttp.RequestCtx) {
 		return
 	}
 
+	allowCORS(ctx)
+	if string(ctx.Method()) == fasthttp.MethodOptions {
+		ctx.SetStatusCode(fasthttp.StatusNoContent) // 204
+		return
+	}
+
 	var hawkToken string
 	var err error
 
